Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations derfloh on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
HELP CONFIGURING FOR FTP
- Thread starter chadw
- Start date
HI.
Please provide more details, and also look here:
Bye
Yizhar Hurwitz
Please provide more details, and also look here:
Bye
Yizhar Hurwitz
- Thread starter
- #3
SomeNetworkGuy
MIS
Chad
As Yizhar mentioned, more information would be useful. Also, in your first post, you mention you are trying to FTP out, but in your second post you mention you are trying to FTP in...
If you are trying to FTP in, then you would need an access list allowing inbound FTP traffic. You will need to apply this access-list to an interface using an access-group. If you are allowing FTP access to the world, then it would look like this:
access-list ftpinbound permit tcp any host AAA.BBB.CCC.DDD eq 21
where AAA.BBB.CCC.DDD is a valid external ip address that you have mapped to an internal ip (preferably in your DMZ) with static command:
static (dmz,outside) AAA.BBB.CCC.DDD EEE.FFF.GGG.HHH netmask 255.255.255.255 0 0
To apply to an interface, you will need to use the access-group command:
access-group ftpinbound in interface outside
access-group dmz in interface dmz
You will also want to add the following to your Pix Config:
fixup protocol ftp 21
Hope this helps
SNG
As Yizhar mentioned, more information would be useful. Also, in your first post, you mention you are trying to FTP out, but in your second post you mention you are trying to FTP in...
If you are trying to FTP in, then you would need an access list allowing inbound FTP traffic. You will need to apply this access-list to an interface using an access-group. If you are allowing FTP access to the world, then it would look like this:
access-list ftpinbound permit tcp any host AAA.BBB.CCC.DDD eq 21
where AAA.BBB.CCC.DDD is a valid external ip address that you have mapped to an internal ip (preferably in your DMZ) with static command:
static (dmz,outside) AAA.BBB.CCC.DDD EEE.FFF.GGG.HHH netmask 255.255.255.255 0 0
To apply to an interface, you will need to use the access-group command:
access-group ftpinbound in interface outside
access-group dmz in interface dmz
You will also want to add the following to your Pix Config:
fixup protocol ftp 21
Hope this helps
SNG
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question